This Week in Privacy: 15 March 2021
March 15, 2021
EDPB addresses UK adequacy, Draft ePrivacy Regulation and adopts guidelines on connected vehicles
The European Data Protection Board announced the outcome of its 46th plenary session, releasing several documents.
In particular, the EDPB adopted a statement on the Draft ePrivacy Regulation, guidelines on virtual voice assistants which will be submitted for public consultation, guidelines on connected vehicles, as well as a joint opinion with the European Data Protection Supervisor on the Data Governance Act. In addition, the EDPB discussed the draft UK adequacy decisions, noting that it will thoroughly review them.
Congresswoman reintroduces bill for federal Information Transparency and Personal Data Control Act
In the US, a bill for the Information Transparency and Personal Data Control Act, has been re-introduced, which aims to create a national data privacy standard.
U.S. Congresswoman, Suzan DelBene, who introduced the bill, highlighted the importance of establishing a uniform set of consumer rights and creating one set of rules for businesses, noting that the bill would protect personal information, including data relating to financial, health, genetic, biometric, or geolocation, as well as social security numbers, and children's information. The bill would also include requirements for companies to use plain English; requiring opt-in consent from consumers for the use of their sensitive personal data that may be used in ways not expected by consumers; various disclosure requirements and audit requirements; the creation of a unified national standard to avoid a patchwork of different privacy standards by preempting conflicting state laws; and enforcement through strengthened rulemaking authority by the Federal Trade Commission.
The U.S. Chamber of Commerce also issued a statement of support for the bill shortly following the announcement.
European Commission confirms digital green certificate will meet data protection and security requirements
The European Commission announced that its proposal for digital green certificates, which will be soon be presented, will meet data protection, security, and privacy requirements.
The Commission highlighted that the certificates aim to provide digital proof that a person has been vaccinated against COVID-19, has recovered from COVID-19, or has received a negative test result, in order to facilitate the safe free movement of citizens in the EU. The Commission also outlined that certificates should be set up on the basis of the interoperability guidelines and the common data set for test results, on which EU countries have already agreed.
Finally, the Commission noted its intention to work with EU countries to identify technical solutions that can be deployed rapidly; ensure that the authenticity of certificates can be checked securely throughout the EU; and enable mutual recognition.
- Read more here